Code that lets you use wolfCrypt as a crypto provider for Rustls, with
no_std support by default. The std library is only used in tests and the
build.rs file for binding generation; the core crypto provider itself does
not depend on std.
This is in an alpha stage, particularly because the Rustls API is not yet stable.
This code currently works with Rustls = 0.23.16.
- rustls-wolfcrypt-provider: Crate containing the code that lets you use rustls with wolfcrypt as a crypto provider.
- wolfcrypt-rs: Low-level unsafe bindings for wolfcrypt generated using bindgen.
TLS13_CHACHA20_POLY1305_SHA256TLS13_AES_128_GCM_SHA256TLS13_AES_256_GCM_SHA384
TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
For more details about the supported curves, verification/signing methods, and algorithms, please consult the respective folders.
-
Clone the repository:
git clone --depth=1 git@github.com:gasbytes/rustls-wolfcrypt-provider.git cd rustls-wolfcrypt-provider/ -
Run the build script to set up
wolfSSLandRustls:./build.sh
This script performs the following steps:
- Builds
wolfSSLand generates the necessary bindings. - Installs
wolfSSLto/opt/wolfssl-rs(requires sudo). - Runs sanity tests for
wolfcrypt-rsto ensure installation was successful. - Builds
rustls-wolfcrypt-providerwithwolfCryptas the crypto provider. - Runs tests to confirm the setup for
RustlswithwolfCrypt.
- Verify Installation
- To confirm that everything is installed correctly, run:
make test - You should see output indicating successful test completion.
For Rustls usage, consult the examples folder in this repository. Each example
demonstrates setting up and using rustls-wolfcrypt-provider with specific
cipher suites and configurations.